Hash: SHA256

             AUSCERT External Security Bulletin Redistribution

         SUSE-SU-2019:2450-1 Security update for the Linux Kernel
                             25 September 2019


        AusCERT Security Bulletin Summary

Product:           kernel
Publisher:         SUSE
Operating System:  SUSE
Impact/Access:     Access Privileged Data -- Remote/Unauthenticated
                   Modify Permissions     -- Remote/Unauthenticated
                   Modify Arbitrary Files -- Existing Account      
                   Denial of Service      -- Remote/Unauthenticated
                   Reduced Security       -- Console/Physical      
Resolution:        Patch/Upgrade
CVE Names:         CVE-2019-14284 CVE-2019-14283 CVE-2019-13648
                   CVE-2019-13631 CVE-2019-12819 CVE-2019-12818
                   CVE-2019-12614 CVE-2019-12456 CVE-2019-12380
                   CVE-2019-11810 CVE-2019-11599 CVE-2019-11478
                   CVE-2019-11477 CVE-2019-10639 CVE-2019-10638
                   CVE-2019-10126 CVE-2019-3846 CVE-2019-1125
                   CVE-2018-20855 CVE-2018-20836 CVE-2018-16871

Original Bulletin: 

Comment: This advisory references vulnerabilities in the Linux kernel that 
         also affect distributions other than SUSE. It is recommended that 
         administrators running Linux check for an updated version of the 
         kernel for their system.

- --------------------------BEGIN INCLUDED TEXT--------------------

SUSE Security Update: Security update for the Linux Kernel


Announcement ID:   SUSE-SU-2019:2450-1
Rating:            important
References:        #1012382 #1051510 #1053043 #1055117 #1061840 #1065600
                   #1065729 #1068032 #1071995 #1083647 #1083710 #1088047
                   #1094555 #1098633 #1102247 #1106383 #1106751 #1109137
                   #1111666 #11123080 #1112824 #1113722 #1114279 #1115688
                   #1117158 #1118139 #1119222 #1120423 #1120566 #1124167
                   #1124503 #1127034 #1127155 #1127315 #1128432 #1128902
                   #1128910 #1129770 #1130972 #1132154 #1132390 #1133021
                   #1133401 #1133738 #1134097 #1134303 #1134390 #1134393
                   #1134395 #1134399 #1134671 #1135296 #1135335 #1135556
                   #1135642 #1135661 #1136157 #1136424 #1136598 #1136811
                   #1136896 #1136922 #1136935 #1136990 #1137103 #1137162
                   #1137194 #1137366 #1137372 #1137429 #1137444 #1137458
                   #1137534 #1137535 #1137584 #1137586 #1137609 #1137625
                   #1137728 #1137739 #1137752 #1137811 #1137827 #1137884
                   #1137995 #1137996 #1137998 #1137999 #1138000 #1138002
                   #1138003 #1138005 #1138006 #1138007 #1138008 #1138009
                   #1138010 #1138011 #1138012 #1138013 #1138014 #1138015
                   #1138016 #1138017 #1138018 #1138019 #1138291 #1138293
                   #1138374 #1138375 #1138589 #1138719 #1139358 #1139751
                   #1139771 #1139782 #1139865 #1140133 #1140139 #1140322
                   #1140328 #1140405 #1140424 #1140428 #1140575 #1140577
                   #1140637 #1140652 #1140658 #1140715 #1140719 #1140726
                   #1140727 #1140728 #1140814 #1140887 #1140888 #1140889
                   #1140891 #1140893 #1140903 #1140945 #1140954 #1140955
                   #1140956 #1140957 #1140958 #1140959 #1140960 #1140961
                   #1140962 #1140964 #1140971 #1140972 #1140992 #1141401
                   #1141402 #1141452 #1141453 #1141454 #1141478 #1141488
                   #1142023 #1142112 #1142220 #1142221 #1142265 #1142350
                   #1142351 #1142354 #1142359 #1142450 #1142701 #1142868
                   #1143003 #1143045 #1143105 #1143185 #1143189 #1143191
Cross-References:  CVE-2018-16871 CVE-2018-20836 CVE-2018-20855 CVE-2019-10126
                   CVE-2019-10638 CVE-2019-10639 CVE-2019-1125 CVE-2019-11477
                   CVE-2019-11478 CVE-2019-11599 CVE-2019-11810 CVE-2019-12380
                   CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819
                   CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284
Affected Products:
                   SUSE Linux Enterprise Real Time Extension 12-SP4

An update that solves 21 vulnerabilities and has 160 fixes is now available.


The SUSE Linux Enterprise Server 12 SP4 Realtime Kernel was updated to fix bugs
and security issues.
Security issues fixed:

  o CVE-2019-12614: An issue was discovered in dlpar_parse_cc_property in arch/
    powerpc/platforms/pseries/dlpar.c. There was an unchecked kstrdup of prop->
    name, which might allow an attacker to cause a denial of service (NULL
    pointer dereference and system crash) (bnc#1137194).
  o CVE-2018-16871: A NULL pointer dereference due to an anomalized NFS message
    sequence was fixed. (bnc#1137103).
  o CVE-2018-20836: There was a race condition in smp_task_timedout() and
    smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a
    use-after-free (bnc#1134395).
  o CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and
    possibly escalate privileges was found in the mwifiex kernel module while
    connecting to a malicious wireless network (bnc#1136424).
  o CVE-2018-20855: An issue was discovered in create_qp_common in drivers/
    infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized,
    resulting in a leak of stack memory to userspace (bsc#1143045).
  o CVE-2019-11810: A NULL pointer dereference can occur when
    megasas_create_frame_pool() fails in megasas_alloc_cmds() in drivers/scsi/
    megaraid/megaraid_sas_base.c. This causes a Denial of Service, related to a
    use-after-free (bsc#1134399).
  o CVE-2019-14283: The function set_geometry in drivers/block/floppy.c did not
    validate the sect and head fields, as demonstrated by an integer overflow
    and out-of-bounds read. It can be triggered by an unprivileged local user
    when a floppy disk has been inserted. NOTE: QEMU creates the floppy device
    by default (bsc#1143191).
  o CVE-2019-14284: The drivers/block/floppy.c allowed a denial of service by
    setup_format_params division-by-zero. Two consecutive ioctls can trigger
    the bug: the first one should set the drive geometry with .sect and .rate
    values that make F_SECT_PER_TRACK be zero. Next, the floppy format
    operation should be called. It can be triggered by an unprivileged local
    user even when a floppy disk has not been inserted. NOTE: QEMU creates the
    floppy device by default (bsc#1143189).
  o CVE-2019-13631: In parse_hid_report_descriptor in drivers/input/tablet/
    gtco.c, a malicious USB device can send an HID report that triggers an
    out-of-bounds write during generation of debugging messages (bsc#1142023).
  o CVE-2019-1125: Enable Spectre v1 mitigations for SWAPGS (bsc#1139358).
  o CVE-2019-10126: A flaw was found in the Linux kernel that might lead to
    memory corruption in the marvell mwifiex driver. (bnc#1136935)
  o CVE-2019-10638: In the Linux kernel, a device could be tracked by an
    attacker using the IP ID values the kernel produces for connection-less
    protocols (e.g., UDP and ICMP). When such traffic was sent to multiple
    destination IP addresses, it was possible to obtain hash collisions (of
    indices to the counter array) and thereby obtain the hashing key (via
    enumeration). An attack may be conducted by hosting a crafted web page that
    uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP
    addresses. (bnc#1140575)
  o CVE-2019-10639: The Linux kernel allowed Information Exposure (partial
    kernel address disclosure), leading to a KASLR bypass. Specifically, it was
    possible to extract the KASLR kernel image offset using the IP ID values
    the kernel produces for connection-less protocols (e.g., UDP and ICMP).
    When such traffic was sent to multiple destination IP addresses, it was
    possible to obtain hash collisions (of indices to the counter array) and
    thereby obtain the hashing key (via enumeration). This key contains enough
    bits from a kernel address (of a static variable) so when the key was
    extracted (via enumeration), the offset of the kernel image is exposed.
    This attack can be carried out remotely, by the attacker forcing the target
    device to send UDP or ICMP (or certain other) traffic to
    attacker-controlled IP addresses. Forcing a server to send UDP traffic is
    trivial if the server is a DNS server. ICMP traffic is trivial if the
    server answers ICMP Echo requests (ping). For client targets, if the target
    visited the attacker's web page, then WebRTC or gQUIC could be used to
    force UDP traffic to attacker-controlled IP addresses. NOTE: this attack
    against KASLR became viable because IP ID generation was changed to have a
    dependency on an address associated with a network namespace. (bnc#1140577)
  o CVE-2019-11477: A sequence of SACKs may have been crafted such that one can
    trigger an integer overflow, leading to a kernel panic. (bsc#1137586)
  o CVE-2019-11478: It was possible to send a crafted sequence of SACKs which
    will fragment the TCP retransmission queue. An attacker may have been able
    to further exploit the fragmented queue to cause an expensive linked-list
    walk for subsequent SACKs received for that same TCP connection.
  o CVE-2019-11599: The coredump implementation in the Linux kernel did not use
    locking or other mechanisms to prevent vma layout or vma flags changes
    while it ran, which allowed local users to obtain sensitive information,
    cause a denial of service, or possibly have unspecified other impact by
    triggering a race condition with mmget_not_zero or get_task_mm calls. This
    is related to fs/userfaultfd.c, mm/mmap.c, fs/proc/task_mmu.c, and drivers/
    infiniband/core/uverbs_main.c. (bnc#1133738)
  o CVE-2019-12380: An issue was discovered in the efi subsystem in the Linux
    kernel phys_efi_set_virtual_address_map in arch/x86/platform/efi/efi.c and
    efi_call_phys_prolog in arch/x86/platform/efi/efi_64.c mishandle memory
    allocation failures. NOTE: This id is disputed as not being an issue
    because All the code touched by the referenced commit runs only at boot,
    before any user processes are started. Therefore, there is no possibility
    for an unprivileged user to control it. (bnc#1136598)
  o CVE-2019-12456: a double-fetch bug in _ctl_ioctl_main() could allow local
    users to create a denial of service (bsc#1136922).
  o CVE-2019-12818: The nfc_llcp_build_tlv function in net/nfc/llcp_commands.c
    may return NULL. If the caller does not check for this, it will trigger a
    NULL pointer dereference. This will cause denial of service. This used to
    affect nfc_llcp_build_gb in net/nfc/llcp_core.c. (bsc#1138293)
  o CVE-2019-12819: The function __mdiobus_register() called put_device(),
    which triggered a fixed_mdio_bus_init use-after-free. This would cause a
    denial of service. (bsc#1138291)
  o CVE-2019-13648: In the Linux kernel on the powerpc platform, when hardware
    transactional memory was disabled, a local user can cause a denial of
    service via a sigreturn() system call that sends a crafted signal frame.

Other issues fixed:

  o 6lowpan: Off by one handling ->nexthdr (bsc#1051510).
  o Abort file_remove_privs() for non-reg. files (bsc#1140888).
  o acpi: Add Hygon Dhyana support (fate#327735).
  o acpi: fix menuconfig presentation of acpi submenu (bsc#1117158).
  o acpi/nfit: Always dump _DSM output payload (bsc#1142351).
  o acpi: PM: Allow transitions to D0 to occur in special cases (bsc#1051510).
  o acpi: PM: Avoid evaluating _PS3 on transitions from D3hot to D3cold (bsc#
  o acpi / property: fix handling of data_nodes in acpi_get_next_subnode() (bsc
  o Add back sibling paca poiter to paca (bsc#1055117).
  o added De0-Nanos-SoC board support (and others based on Altera SOC).
  o Add kernel-subpackage-build.spec (FATE#326579).
  o Add sample kernel-default-base spec file (FATE#326579, jsc#SLE-4117, jsc#
    SLE-3853, bsc#1128910).
  o Add support for crct10dif-vpmsum (FATE#327696).
  o Add version information to KLP_SYMBOLS file
  o af_key: unconditionally clone on broadcast (bsc#1051510).
  o af_unix: remove redundant lockdep class (git-fixes).
  o alsa: compress: Be more restrictive about when a drain is allowed (bsc#
  o alsa: compress: Don't allow paritial drain operations on capture streams
  o alsa: compress: Fix regression on compressed capture streams (bsc#1051510).
  o alsa: compress: Prevent bypasses of set_params (bsc#1051510).
  o alsa: firewire-lib/fireworks: fix miss detection of received MIDI messages
  o alsa: firewire-motu: fix destruction of data for isochronous resources (bsc
  o alsa: hda - Add a conexant codec entry to let mute led work (bsc#1051510).
  o alsa: hda - Force polling mode on CNL for fixing codec communication (bsc#
  o alsa: hda/realtek: Add quirks for several Clevo notebook barebones (bsc#
  o alsa: hda/realtek: apply ALC891 headset fixup to one Dell machine (bsc#
  o alsa: hda/realtek - Change front mic location for Lenovo M710q (bsc#
  o alsa: hda/realtek - Fixed Headphone Mic can't record on Dell platform (bsc#
  o alsa: hda/realtek - Headphone Mic can't record after S3 (bsc#1051510).
  o alsa: hda/realtek - Set default power save node to 0 (bsc#1051510).
  o alsa: hda/realtek - Update headset mode for ALC256 (bsc#1051510).
  o alsa: line6: Fix a typo (bsc#1051510).
  o alsa: line6: Fix write on zero-sized buffer (bsc#1051510).
  o alsa: line6: Fix wrong altsetting for LINE6_PODHD500_1 (bsc#1051510).
  o alsa: oxfw: allow PCM capture for Stanton SCS.1m (bsc#1051510).
  o alsa: seq: Break too long mutex context in the write loop (bsc#1051510).
  o alsa: seq: fix incorrect order of dest_client/dest_ports arguments (bsc#
  o alsa: usb-audio: Add quirk for Focusrite Scarlett Solo (bsc#1051510).
  o alsa: usb-audio: Add quirk for MOTU MicroBook II (bsc#1051510).
  o alsa: usb-audio: Cleanup DSD whitelist (bsc#1051510).
  o alsa: usb-audio: Enable .product_name override for Emagic, Unitor 8 (bsc#
  o alsa: usb-audio: fix sign unintended sign extension on left shifts (bsc#
  o alsa: usb-audio: Sanity checks for each pipe and EP types (bsc#1051510).
  o apparmor: enforce nullbyte at end of tag string (bsc#1051510).
  o arch: arm64: acpi: KABI ginore includes (bsc#1117158 bsc#1134671).
  o arm64: acpi: fix alignment fault in accessing acpi (bsc#1117158).
  o arm64: fix acpi dependencies (bsc#1117158).
  o arm64, mm, efi: Account for GICv3 LPI tables in static memblock reserve
    table (bsc#1117158).
  o arm64/x86: Update config files.
  o ASoC : cs4265 : readable register too low (bsc#1051510).
  o ASoC: cs42xx8: Add regcache mask dirty (bsc#1051510).
  o ASoC: cx2072x: fix integer overflow on unsigned int multiply (bsc#1111666).
  o ASoC: eukrea-tlv320: fix a leaked reference by adding missing of_node_put
  o ASoC: fsl_asrc: Fix the issue about unsupported rate (bsc#1051510).
  o ASoC: fsl_sai: Update is_slave_mode with correct value (bsc#1051510).
  o ASoC: fsl_utils: fix a leaked reference by adding missing of_node_put (bsc#
  o ASoC: hdmi-codec: unlock the device on startup errors (bsc#1051510).
  o ASoC: max98090: remove 24-bit format support if RJ is 0 (bsc#1051510).
  o ASoC: soc-pcm: BE dai needs prepare when pause release after resume (bsc#
  o ath6kl: add some bounds checking (bsc#1051510).
  o audit: fix a memory leak bug (bsc#1051510).
  o ax25: fix inconsistent lock state in ax25_destroy_timer (bsc#1051510).
  o batman-adv: allow updating DAT entry timeouts on incoming ARP Replies (bsc#
  o batman-adv: fix for leaked TVLV handler (bsc#1051510).
  o bcache: acquire bch_register_lock later in cached_dev_detach_finish() (bsc#
  o bcache: acquire bch_register_lock later in cached_dev_free() (bsc#1140652).
  o bcache: add code comments for journal_read_bucket() (bsc#1140652).
  o bcache: Add comments for blkdev_put() in registration code path (bsc#
  o bcache: add comments for closure_fn to be called in closure_queue() (bsc#
  o bcache: add comments for kobj release callback routine (bsc#1140652).
  o bcache: add comments for mutex_lock(&b->write_lock) (bsc#1140652).
  o bcache: add error check for calling register_bdev() (bsc#1140652).
  o bcache: add failure check to run_cache_set() for journal replay (bsc#
  o bcache: add io error counting in write_bdev_super_endio() (bsc#1140652).
  o bcache: add more error message in bch_cached_dev_attach() (bsc#1140652).
  o bcache: add pendings_cleanup to stop pending bcache device (bsc#1140652).
  o bcache: add reclaimed_journal_buckets to struct cache_set (bsc#1140652).
  o bcache: add return value check to bch_cached_dev_run() (bsc#1140652).
  o bcache: avoid a deadlock in bcache_reboot() (bsc#1140652).
  o bcache: avoid clang -Wunintialized warning (bsc#1140652).
  o bcache: avoid flushing btree node in cache_set_flush() if io disabled (bsc#
  o bcache: avoid potential memleak of list of journal_replay(s) in the
    CACHE_SYNC branch of run_cache_set (bsc#1140652).
  o bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() (bsc#1140652).
  o bcache: check CACHE_SET_IO_DISABLE in allocator code (bsc#1140652).
  o bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush() (bsc#
  o bcache: Clean up bch_get_congested() (bsc#1140652).
  o bcache: destroy dc->writeback_write_wq if failed to create dc->
    writeback_thread (bsc#1140652).
  o bcache: do not assign in if condition in bcache_device_init() (bsc#
  o bcache: don't set max writeback rate if gc is running (bsc#1140652).
  o bcache: fix a race between cache register and cacheset unregister (bsc#
  o bcache: fix crashes stopping bcache device before read miss done (bsc#
  o bcache: fix failure in journal relplay (bsc#1140652).
  o bcache: fix inaccurate result of unused buckets (bsc#1140652).
  o bcache: fix mistaken sysfs entry for io_error counter (bsc#1140652).
  o bcache: fix potential deadlock in cached_def_free() (bsc#1140652).
  o bcache: fix race in btree_flush_write() (bsc#1140652).
  o bcache: fix return value error in bch_journal_read() (bsc#1140652).
  o bcache: fix stack corruption by PRECEDING_KEY() (bsc#1140652).
  o bcache: fix wrong usage use-after-freed on keylist in out_nocoalesce branch
    of btree_gc_coalesce (bsc#1140652).
  o bcache: ignore read-ahead request failure on backing device (bsc#1140652).
  o bcache: improve bcache_reboot() (bsc#1140652).
  o bcache: improve error message in bch_cached_dev_run() (bsc#1140652).
  o bcache: make bset_search_tree() be more understandable (bsc#1140652).
  o bcache: make is_discard_enabled() static (bsc#1140652).
  o bcache: more detailed error message to bcache_device_link() (bsc#1140652).
  o bcache: move definition of 'int ret' out of macro read_bucket() (bsc#
  o bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() (bsc#
  o bcache: only clear BTREE_NODE_dirty bit when it is set (bsc#1140652).
  o bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached (bsc#
  o bcache: performance improvement for btree_flush_write() (bsc#1140652).
  o bcache: remove redundant LIST_HEAD(journal) from run_cache_set() (bsc#
  o bcache: remove retry_flush_write from struct cache_set (bsc#1140652).
  o bcache: remove unncessary code in bch_btree_keys_init() (bsc#1140652).
  o bcache: remove unnecessary prefetch() in bset_search_tree() (bsc#1140652).
  o bcache: remove "XXX:" comment line from run_cache_set() (bsc#1140652).
  o bcache: return error immediately in bch_journal_replay() (bsc#1140652).
  o bcache: Revert "bcache: fix high CPU occupancy during journal" (bsc#
  o bcache: Revert "bcache: free heap cache_set->flush_btree in
    bch_journal_free" (bsc#1140652).
  o bcache: set largest seq to ja->seq[bucket_index] in journal_read_bucket()
  o bcache: shrink btree node cache after bch_btree_check() (bsc#1140652).
  o bcache: stop writeback kthread and kworker when bch_cached_dev_run() failed
  o bcache: use sysfs_match_string() instead of __sysfs_match_string() (bsc#
  o be2net: Fix number of Rx queues used for flow hashing
  o be2net: Signal that the device cannot transmit during reconfiguration (bsc#
  o be2net: Synchronize be_update_queues with dev_watchdog (bsc#1127315).
  o blk-mq: fix hang caused by freeze/unfreeze sequence (bsc#1128432).
  o blk-mq: free hw queue's resource in hctx's release handler (bsc#1140637).
  o block, bfq: NULL out the bic when it's no longer valid (bsc#1142359).
  o block: Fix a NULL pointer dereference in generic_make_request() (bsc#
  o Bluetooth: Fix faulty expression for minimum encryption key size check (bsc
  o bnx2x: Prevent load reordering in tx completion processing (bsc#1142868).
  o bnxt_en: Fix aggregation buffer leak under OOM condition
  o bonding: fix arp_validate toggling in active-backup mode
  o bonding: Force slave speed check after link state recovery for 802.3ad (bsc
  o bpf, x64: fix stack layout of JITed bpf code (bsc#1083647).
  o bpf, x64: save 5 bytes in prologue when ebpf insns came from cbpf (bsc#
  o brcmfmac: convert dev_init_lock mutex to completion (bsc#1051510).
  o brcmfmac: fix missing checks for kmemdup (bsc#1051510).
  o brcmfmac: fix Oops when bringing up interface during USB disconnect (bsc#
  o brcmfmac: fix race during disconnect when USB completion is in progress
  o brcmfmac: fix WARNING during USB disconnect in case of unempty psq (bsc#
  o bridge: Fix error path for kobject_init_and_add()
  o btrfs: fix race between block group removal and block group allocation (bsc
  o Build klp-symbols in kernel devel projects.
  o can: af_can: Fix error path of can_init() (bsc#1051510).
  o can: flexcan: fix timeout when set small bitrate (bsc#1051510).
  o can: purge socket error queue on sock destruct (bsc#1051510).
  o ceph: flush dirty inodes before proceeding with remount (bsc#1140405).
  o cfg80211: fix memory leak of wiphy device name (bsc#1051510).
  o cgroup: Use css_tryget() instead of css_tryget_online() in task_get_css()
  o chardev: add additional check for minor range overlap (bsc#1051510).
  o clk: qcom: Fix -Wunused-const-variable (bsc#1051510).
  o clk: rockchip: Don't yell about bad mmc phases when getting (bsc#1051510).
  o clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288 (bsc#1051510).
  o clk: tegra210: fix PLLU and PLLU_OUT1 (bsc#1051510).
  o clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides divider
  o coredump: fix race condition between collapse_huge_page() and core dumping
    (bnc#1133738, CVE-2019-11599).
  o coredump: fix race condition between mmget_not_zero()/get_task_mm() and
    core dumping (bsc#1133738, CVE-2019-11599).
  o coresight: etb10: Fix handling of perf mode (bsc#1051510).
  o coresight: etm4x: Add support to enable ETMv4.2 (bsc#1051510).
  o Correct the CVE and bug reference for a floppy security fix
  o Correct the patch reference tag for scsi fix (bsc#1136922 CVE-2019-12456)
  o cpufreq: acpi-cpufreq: Report if CPU doesn't support boost technologies
  o cpufreq: Add Hygon Dhyana support (fate#327735).
  o cpufreq: AMD: Ignore the check for ProcFeedback in ST/CZ (fate#327735).
  o cpufreq: brcmstb-avs-cpufreq: Fix initial command check (bsc#1051510).
  o cpufreq: brcmstb-avs-cpufreq: Fix types for voltage/frequency (bsc#
  o cpufreq: check if policy is inactive early in __cpufreq_get() (bsc#
  o cpufreq: kirkwood: fix possible object reference leak (bsc#1051510).
  o cpufreq/pasemi: fix possible object reference leak (bsc#1051510).
  o cpufreq: pmac32: fix possible object reference leak (bsc#1051510).
  o cpufreq: ppc_cbe: fix possible object reference leak (bsc#1051510).
  o cpufreq: Use struct kobj_attribute instead of struct global_attr (bsc#
  o cpu/topology: Export die_id (jsc#SLE-5454).
  o crypto: algapi - guard against uninitialized spawn list in
    crypto_remove_spawns (bsc#1133401).
  o crypto: arm64/sha1-ce - correct digest for empty data in finup (bsc#
  o crypto: arm64/sha2-ce - correct digest for empty data in finup (bsc#
  o crypto: ccp - Fix 3DES complaint from ccp-crypto module (bsc#1051510).
  o crypto: ccp - fix AES CFB error exposed by new test vectors (bsc#1051510).
  o crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bsc#1051510).
  o crypto: ccp - fix the SEV probe in kexec boot path (bsc#1136896).
  o crypto: ccp/gcm - use const time tag comparison (bsc#1051510).
  o crypto: ccp - memset structure fields to zero before reuse (bsc#1051510).
  o crypto: ccp - Validate the the error value used to index error messages
  o crypto: chacha20poly1305 - fix atomic sleep when using async algorithm (bsc
  o crypto: cryptd - Fix skcipher instance memory leak (bsc#1051510).
  o crypto: crypto4xx - fix a potential double free in ppc4xx_trng_probe (bsc#
  o crypto: ghash - fix unaligned memory access in ghash_setkey() (bsc#
  o crypto: talitos - Align SEC1 accesses to 32 bits boundaries (bsc#1051510).
  o crypto: talitos - check data blocksize in ablkcipher (bsc#1051510).
  o crypto: talitos - fix CTR alg blocksize (bsc#1051510).
  o crypto: talitos - fix max key size for sha384 and sha512 (bsc#1051510).
  o crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking (bsc#
  o crypto: talitos - properly handle split ICV (bsc#1051510).
  o crypto: talitos - reduce max key size for SEC1 (bsc#1051510).
  o crypto: talitos - rename alternative AEAD algos (bsc#1051510).
  o crypto: user - prevent operating on larval algorithms (bsc#1133401).
  o crypto: vmx - ghash: do nosimd fallback manually (bsc#1135661, bsc#
  o crypto: vmx - return correct error code on failed setkey (bsc#1135661, bsc#
  o dasd_fba: Display '00000000' for zero page when dumping sense (bsc#
  o dax: Fix xarray entry association for mixed mappings (bsc#1140893).
  o device core: Consolidate locking and unlocking of parent and device (bsc#
  o dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" (bsc#1051510).
  o dmaengine: imx-sdma: remove BD_INTR for channel0 (bsc#1051510).
  o dm, dax: Fix detection of DAX support (bsc#1139782).
  o doc: Cope with the deprecation of AutoReporter (bsc#1051510).
  o docs: Fix conf.py for Sphinx 2.0 (bsc#1135642).
  o Documentation: Add MDS vulnerability documentation (bsc#1135642).
  o Documentation: Correct the possible MDS sysfs values (bsc#1135642).
  o Documentation: DMA-API: fix a function name of max_mapping_size (bsc#
  o Do not provide kernel-default from kernel-default-base (boo#1132154, bsc#
  o Do not provide kernel-default-srchash from kernel-default-base.
  o Don't restrict NFSv4.2 on openSUSE (bsc#1138719).
  o dpaa_eth: fix SG frame cleanup (networking-stable-19_05_14).
  o drbd: Avoid Clang warning about pointless switch statment (bsc#1051510).
  o drbd: disconnect, if the wrong UUIDs are attached on a connected peer (bsc#
  o drbd: narrow rcu_read_lock in drbd_sync_handshake (bsc#1051510).
  o drbd: skip spurious timeout (ping-timeo) when failing promote (bsc#
  o driver core: Establish order of operations for device_add and device_del
    via bitflag (bsc#1106383).
  o driver core: Probe devices asynchronously instead of the driver (bsc#
  o drivers: acpi: add dependency of EFI for arm64 (bsc#1117158).
  o drivers/base: Introduce kill_device() (bsc#1139865).
  o drivers/base: kABI fixes for struct device_private (bsc#1106383).
  o drivers: misc: fix out-of-bounds access in function param_set_kgdbts_var
  o drivers/rapidio/devices/rio_mport_cdev.c: fix resource leak in error
    handling path in 'rio_dma_transfer()' (bsc#1051510).
  o drivers/rapidio/rio_cm.c: fix potential oops in riocm_ch_listen() (bsc#
  o drivers: thermal: tsens: Don't print error message on -EPROBE_DEFER (bsc#
  o drm/amdgpu: fix old fence check in amdgpu_fence_emit (bsc#1051510).
  o drm/amdgpu/gfx9: use reset default for PA_SC_FIFO_SIZE (bsc#1051510).
  o drm/arm/hdlcd: Allow a bit of clock tolerance (bsc#1051510).
  o drm/drv: Hold ref on parent device during drm_device lifetime (bsc#
  o drm/gma500/cdv: Check vbt config bits when detecting lvds panels (bsc#
  o drm/i915/dmc: protect against reading random memory (bsc#1051510).
  o drm/i915/gvt: Fix cmd length of VEB_DI_IECP (bsc#1113722)
  o drm/i915/gvt: ignore unexpected pvinfo write (bsc#1051510).
  o drm/i915/gvt: refine ggtt range validation (bsc#1113722)
  o drm/i915/perf: fix whitelist on Gen10+ (bsc#1051510).
  o drm/i915/sdvo: Implement proper HDMI audio support for SDVO (bsc#1051510).
  o drm/meson: Add support for XBGR8888 & ABGR8888 formats (bsc#1051510).
  o drm/msm/a3xx: remove TPL1 regs from snapshot (bsc#1051510).
  o drm/nouveau/disp/dp: respect sink limits when selecting failsafe link
    configuration (bsc#1051510).
  o drm/nouveau/i2c: Disable i2c bus access after ->fini() (bsc#1113722)
  o drm/nouveau/i2c: Enable i2c pads & busses during preinit (bsc#1051510).
  o drm/radeon: prefer lower reference dividers (bsc#1051510).
  o drm/rockchip: Properly adjust to a true clock in adjusted_mode (bsc#
  o drm: Wake up next in drm_read() chain if we are forced to putback the event
  o e1000e: start network tx queue only when link is up (bsc#1051510).
  o edac, amd64: Add Hygon Dhyana support (fate#327735).
  o edac/mc: Fix edac_mc_find() in case no device is found (bsc#1114279).
  o efi: add API to reserve memory persistently across kexec reboot (bsc#
  o efi/arm: Defer persistent reservations until after paging_init() (bsc#
  o efi/arm: Don't mark acpi reclaim memory as MEMBLOCK_NOMAP (bsc#1117158 bsc#
    1115688 bsc#1120566).
  o efi/arm: libstub: add a root memreserve config table (bsc#1117158).
  o efi/arm: map UEFI memory map even w/o runtime services enabled (bsc#
  o efi/arm: preserve early mapping of UEFI memory map longer for BGRT (bsc#
  o efi/arm: Revert "Defer persistent reservations until after paging_init()"
  o efi/arm: Revert deferred unmap of early memmap mapping (bsc#1117158).
  o efi: honour memory reservations passed via a linux specific config table
  o efi: Permit calling efi_mem_reserve_persistent() from atomic context (bsc#
  o efi: Permit multiple entries in persistent memreserve data structure (bsc#
  o efi: Prevent GICv3 WARN() by mapping the memreserve table before first use
  o efi: Reduce the amount of memblock reservations for persistent allocations
  o efi/x86/Add missing error handling to old_memmap 1:1 mapping code
  o ethtool: check the return value of get_regs_len (git-fixes).
  o ethtool: fix potential userspace buffer overflow
  o ext4: do not delete unlinked inode from orphan list on failed truncate (bsc
  o extcon: arizona: Disable mic detect if running when driver is removed (bsc#
  o firmware: efi: factor out mem_reserve (bsc#1117158 bsc#1134671).
  o Fix kABI breakage by mwifiex security fix (CVE-2019-3846,bsc#1136424).
  o Fix kABI for asus-wmi quirk_entry field addition (bsc#1051510).
  o Fix memory leak in sctp_process_init (networking-stable-19_06_09).
  o floppy: fix div-by-zero in setup_format_params (CVE-2019-14283,bsc#
  o floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283,bsc#1143191).
  o fork, memcg: fix cached_stacks case (bsc#1134097).
  o fork, memcg: fix crash in free_thread_stack on memcg charge fail (bsc#
  o fs/ocfs2: fix race in ocfs2_dentry_attach_lock() (bsc#1140889).
  o fs/proc/proc_sysctl.c: Fix a NULL pointer dereference (bsc#1140887).
  o fs/proc/proc_sysctl.c: fix NULL pointer dereference in put_links (bsc#
  o ftrace/x86: Remove possible deadlock between register_kprobe() and
    ftrace_run_update_code() (bsc#1071995 fate#323487).
  o fuse: fallocate: fix return with locked inode (bsc#1051510).
  o fuse: fix writepages on 32bit (bsc#1051510).
  o fuse: honor RLIMIT_FSIZE in fuse_file_fallocate (bsc#1051510).
  o genirq: Prevent use-after-free and work list corruption (bsc#1051510).
  o genirq: Respect IRQCHIP_SKIP_SET_WAKE in irq_chip_set_wake_parent() (bsc#
  o genwqe: Prevent an integer overflow in the ioctl (bsc#1051510).
  o git_sort: add crypto maintainer tree.
  o gpio: fix gpio-adp5588 build errors (bsc#1051510).
  o gpio: omap: fix lack of irqstatus_raw0 for OMAP4 (bsc#1051510).
  o gpio: Remove obsolete comment about gpiochip_free_hogs() usage (bsc#
  o HID: input: fix a4tech horizontal wheel custom usage (bsc#1137429).
  o HID: logitech-hidpp: change low battery level threshold from 31 to 30
    percent (bsc#1051510).
  o HID: logitech-hidpp: use RAP instead of FAP to get the protocol version
  o HID: wacom: Add ability to provide explicit battery status info (bsc#
  o - HID: wacom: Add support for 3rd generation Intuos BT (bsc#1051510).
  o HID: wacom: Add support for Pro Pen slim (bsc#1051510).
  o HID: wacom: convert Wacom custom usages to standard HID usages (bsc#
  o HID: wacom: Correct button numbering 2nd-gen Intuos Pro over Bluetooth (bsc
  o HID: wacom: correct touch resolution x/y typo (bsc#1051510).
  o HID: wacom: Don't report anything prior to the tool entering range (bsc#
  o HID: wacom: Don't set tool type until we're in range (bsc#1051510).
  o HID: wacom: fix mistake in printk (bsc#1051510).
  o HID: wacom: generic: add the "Report Valid" usage (bsc#1051510).
  o HID: wacom: generic: Correct pad syncing (bsc#1051510).
  o HID: wacom: generic: Ignore HID_DG_BATTERYSTRENTH == 0 (bsc#1051510).
  o HID: wacom: generic: Leave tool in prox until it completely leaves sense
  o HID: wacom: generic: only switch the mode on devices with LEDs (bsc#
  o HID: wacom: generic: read HID_DG_CONTACTMAX from any feature report (bsc#
  o HID: wacom: generic: Refactor generic battery handling (bsc#1051510).
  o HID: wacom: generic: Report AES battery information (bsc#1051510).
  o HID: wacom: generic: Reset events back to zero when pen leaves (bsc#
  o HID: wacom: generic: Scale battery capacity measurements to percentages
  o HID: wacom: generic: Send BTN_STYLUS3 when both barrel switches are set
  o HID: wacom: generic: Send BTN_TOOL_PEN in prox once the pen enters range
  o HID: wacom: generic: Support multiple tools per report (bsc#1051510).
  o HID: wacom: generic: Use generic codepath terminology in
    wacom_wac_pen_report (bsc#1051510).
  o HID: wacom: Mark expected switch fall-through (bsc#1051510).
  o HID: wacom: Move handling of HID quirks into a dedicated function (bsc#
  o HID: wacom: Move HID fix for AES serial number into wacom_hid_usage_quirk
  o HID: wacom: Properly handle AES serial number and tool type (bsc#1051510).
  o HID: wacom: Queue events with missing type/serial data for later processing
  o HID: wacom: Remove comparison of u8 mode with zero and simplify (bsc#
  o HID: wacom: Replace touch_max fixup code with static touch_max definitions
  o HID: wacom: Send BTN_TOUCH in response to INTUOSP2_BT eraser contact (bsc#
  o HID: wacom: Support "in range" for Intuos/Bamboo tablets where possible
  o HID: Wacom: switch Dell canvas into highres mode (bsc#1051510).
  o HID: wacom: Sync INTUOSP2_BT touch state after each frame if necessary (bsc
  o HID: wacom: wacom_wac_collection() is local to wacom_wac.c (bsc#1051510).
  o HID: wacom: Work around HID descriptor bug in DTK-2451 and DTH-2452 (bsc#
  o hugetlbfs: dirty pages as they are added to pagecache (git fixes (mm/
  o hugetlbfs: fix kernel BUG at fs/hugetlbfs/inode.c:444! (git fixes (mm/
  o hwmon: (core) add thermal sensors only if dev->of_node is present (bsc#
  o hwmon/coretemp: Cosmetic: Rename internal variables to zones from packages
  o hwmon/coretemp: Support multi-die/package (jsc#SLE-5454).
  o hwmon: (k10temp) 27C Offset needed for Threadripper2 (FATE#327735).
  o hwmon: (k10temp) Add Hygon Dhyana support (FATE#327735).
  o hwmon: (k10temp) Add support for AMD Ryzen w/ Vega graphics (FATE#327735).
  o hwmon: (k10temp) Add support for family 17h (FATE#327735).
  o hwmon: (k10temp) Add support for Stoney Ridge and Bristol Ridge CPUs (FATE#
  o hwmon: (k10temp) Add support for temperature offsets (FATE#327735).
  o hwmon: (k10temp) Add temperature offset for Ryzen 1900X (FATE#327735).
  o hwmon: (k10temp) Add temperature offset for Ryzen 2700X (FATE#327735).
  o hwmon: (k10temp) Correct model name for Ryzen 1600X (FATE#327735).
  o hwmon: (k10temp) Display both Tctl and Tdie (FATE#327735).
  o hwmon: (k10temp) Fix reading critical temperature register (FATE#327735).
  o hwmon: (k10temp) Make function get_raw_temp static (FATE#327735).
  o hwmon: (k10temp) Move chip specific code into probe function (FATE#327735).
  o hwmon: (k10temp) Only apply temperature offset if result is positive (FATE#
  o hwmon: (k10temp) Support all Family 15h Model 6xh and Model 7xh processors
  o hwmon: k10temp: Support Threadripper 2920X, 2970WX; simplify offset table
  o hwmon: (k10temp) Use API function to access System Management Network (FATE
  o hwmon/k10temp, x86/amd_nb: Consolidate shared device IDs (FATE#327735).
  o hwmon: (pmbus/core) Treat parameters as paged if on multiple pages (bsc#
  o hwrng: omap - Set default quality (bsc#1051510).
  o i2c: acorn: fix i2c warning (bsc#1135642).
  o i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr (bsc#1051510).
  o i2c: i801: Add support for Intel Comet Lake (jsc#SLE-5331).
  o i2c-piix4: Add Hygon Dhyana SMBus support (FATE#327735).
  o IB/mlx5: Fix leaking stack memory to userspace (bsc#1143045
  o ibmveth: Update ethtool settings to reflect virtual properties (bsc#
    1136157, LTC#177197).
  o ibmvnic: Add device identification to requested IRQs (bsc#1137739).
  o ibmvnic: Do not close unopened driver during reset (bsc#1137752).
  o ibmvnic: Fix unchecked return codes of memory allocations (bsc#1137752).
  o ibmvnic: Refresh device multicast list after reset (bsc#1137752).
  o ibmvnic: remove set but not used variable 'netdev' (bsc#1137739).
  o iio: ad_sigma_delta: Properly handle SPI bus locking vs CS assertion (bsc#
  o iio: common: ssp_sensors: Initialize calculated_time in
    ssp_common_process_data (bsc#1051510).
  o iio: hmc5843: fix potential NULL pointer dereferences (bsc#1051510).
  o indirect call wrappers: helpers to speed-up indirect calls of builtin (bsc#
  o inet: switch IP ID generator to siphash (CVE-2019-10638 bsc#1140575).
  o Input: elantech - enable middle button support on 2 ThinkPads (bsc#
  o Input: gtco - bounds check collection indent level (CVE-2019-13631,bsc#
  o Input: imx_keypad - make sure keyboard can always wake up system (bsc#
  o Input: psmouse - fix build error of multiple definition (bsc#1051510).
  o Input: synaptics - enable SMBUS on T480 thinkpad trackpad (bsc#1051510).
  o Input: synaptics - enable SMBus on ThinkPad E480 and E580 (bsc#1051510).
  o Input: tm2-touchkey - acknowledge that setting brightness is a blocking
    call (bsc#1129770).
  o Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD (bsc
  o Install extra rpm scripts for kernel subpackaging (FATE#326579, jsc#
    SLE-4117, jsc#SLE-3853, bsc#1128910).
  o intel_th: msu: Fix single mode with disabled IOMMU (bsc#1051510).
  o iommu/amd: Make iommu_disable safer (bsc#1140955).
  o iommu/arm-smmu: Add support for qcom,smmu-v2 variant (bsc#1051510).
  o iommu/arm-smmu: Avoid constant zero in TLBI writes (bsc#1140956).
  o iommu/arm-smmu-v3: Abort all transactions if SMMU is enabled in kdump
    kernel (bsc#1117158).
  o iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel (bsc#1117158 bsc#
  o iommu/arm-smmu-v3: sync the OVACKFLG to PRIQ consumer register (bsc#
  o iommu/arm-smmu-v3: Use explicit mb() when moving cons pointer (bsc#
  o iommu: Fix a leak in iommu_insert_resv_region (bsc#1140957).
  o iommu: Use right function to get group for device (bsc#1140958).
  o iommu/vt-d: Duplicate iommu_resv_region objects per device list (bsc#
  o iommu/vt-d: Handle PCI bridge RMRR device scopes in
    intel_iommu_get_resv_regions (bsc#1140960).
  o iommu/vt-d: Handle RMRR with PCI bridge device scopes (bsc#1140961).
  o iommu/vt-d: Introduce is_downstream_to_pci_bridge helper (bsc#1140962).
  o iommu/vt-d: Remove unnecessary rcu_read_locks (bsc#1140964).
  o ipv4: Define __ipv4_neigh_lookup_noref when CONFIG_INET is disabled
  o ipv4: Fix raw socket lookup for local traffic (networking-stable-19_05_14).
  o ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
  o ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST
  o ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop
  o ipv6: Consider sk_bound_dev_if when binding a raw socket to an address
  o ipv6: fix EFAULT on sendto with icmpv6 and hdrincl
  o ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero
  o ipv6: use READ_ONCE() for inet->hdrincl as in ipv4
  o irqchip/gic-v3-its: fix some definitions of inner cacheability attributes
  o irqchip/mbigen: Don't clear eventid when freeing an MSI (bsc#1051510).
  o iwlwifi: mvm: check for length correctness in iwl_mvm_create_skb() (bsc#
  o iwlwifi: pcie: don't crash on invalid RX interrupt (bsc#1051510).
  o kabi: drop LINUX_MIB_TCPWQUEUETOOBIG snmp counter (bsc#1137586).
  o Kabi fixup blk_mq_register_dev() (bsc#1140637).
  o kabi: handle addition of net::hash_mix (CVE-2019-10639 bsc#1140577).
  o kabi: handle addition of netns_ipv4::ip_id_key (CVE-2019-10638 bsc#
  o kabi: move sysctl_tcp_min_snd_mss to preserve struct net layout (bsc#
  o kABI workaround for the new pci_dev.skip_bus_pm field addition (bsc#
  o kabi: x86/topology: Add CPUID.1F multi-die/package support (jsc#SLE-5454).
  o kabi: x86/topology: Define topology_logical_die_id() (jsc#SLE-5454).
  o kbuild: use -flive-patching when CONFIG_LIVEPATCH is enabled (bsc#1071995
  o kernel-binary: fix missing \
  o kernel-binary: rpm does not support multiline condition
  o kernel-binary: Use -c grep option in klp project detection.
  o kernel: jump label transformation performance (bsc#1137534 bsc#1137535 LTC#
    178058 LTC#178059).
  o kernel/signal.c: trace_signal_deliver when signal_group_exit (git-fixes).
  o kernel-subpackage-spec: Add dummy package to ensure subpackages are rebuilt
    with kernel update (bsc#1106751).
  o KMPs: obsolete older KMPs of the same flavour (bsc#1127155, bsc#1109137).
  o KMPs: provide and conflict a kernel version specific KMP name (bsc#1127155,
  o KVM: arm/arm64: vgic-its: Take the srcu lock when parsing the memslots (bsc
  o KVM: arm/arm64: vgic-its: Take the srcu lock when writing to guest memory
  o kvm: mmu: Fix overflow on kvm mmu page limit calculation (bsc#1135335).
  o kvm/mmu: kABI fix for *_mmu_pages changes in struct kvm_arch (bsc#1135335).
  o KVM: polling: add architecture backend to disable polling (bsc#1119222).
  o KVM: PPC: Book3S HV: Avoid lockdep debugging in TCE realmode handlers (bsc#
  o KVM: PPC: Book3S HV: XIVE: Do not clear IRQ data of passthrough interrupts
  o KVM: PPC: Book3S: Protect memslots while validating user address (bsc#
  o KVM: PPC: Release all hardware TCE tables attached to a group (bsc#
  o KVM: PPC: Remove redundand permission bits removal (bsc#1061840).
  o KVM: PPC: Validate all tces before updating tables (bsc#1061840).
  o KVM: PPC: Validate TCEs against preregistered memory page sizes (bsc#
  o KVM: s390: change default halt poll time to 50us (bsc#1119222).
  o KVM: s390: enable CONFIG_HAVE_KVM_NO_POLL (bsc#1119222)
  o KVM: s390: fix typo in parameter description (bsc#1119222).
  o KVM: s390: kABI Workaround for 'kvm_vcpu_stat'
  o KVM: s390: kABI Workaround for 'lowcore' (bsc#1119222).
  o KVM: s390: provide kvm_arch_no_poll function (bsc#1119222).
  o kvm: svm/avic: Do not send AVIC doorbell to self (bsc#1140133).
  o kvm: svm/avic: fix off-by-one in checking host APIC ID (bsc#1140971).
  o KVM: SVM: Fix detection of AMD Errata 1096 (bsc#1142354).
  o KVM: x86: fix return value for reserved EFER (bsc#1140992).
  o kvm: x86: Include CPUID leaf 0x8000001e in kvm's supported CPUID (bsc#
  o kvm: x86: Include multiple indices with CPUID leaf 0x8000001d (bsc#
  o KVM: x86: Skip EFER vs. guest CPUID checks for host-initiated writes (bsc#
  o lapb: fixed leak of control-blocks (networking-stable-19_06_18).
  o leds: avoid flush_work in atomic context (bsc#1051510).
  o libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk (bsc#
  o lib/bitmap.c: make bitmap_parselist() thread-safe and much faster (bsc#
  o lib: fix stall in __bitmap_parselist() (bsc#1051510).
  o libnvdimm/bus: Prevent duplicate device_unregister() calls (bsc#1139865).
  o libnvdimm/namespace: Fix label tracking error (bsc#1142350).
  o libnvdimm, pfn: Fix over-trim in trim_pfn_device() (bsc#1140719).
  o lib/scatterlist: Fix mapping iterator when sg->offset is greater than
    PAGE_SIZE (bsc#1051510).
  o livepatch: Remove duplicate warning about missing reliable stacktrace
    support (bsc#1071995 fate#323487).
  o livepatch: Use static buffer for debugging messages under rq lock (bsc#
    1071995 fate#323487).
  o llc: fix skb leak in llc_build_and_send_ui_pkt()
  o mac80211/cfg80211: update bss channel on channel switch (bsc#1051510).
  o mac80211: Do not use stack memory with scatterlist for GMAC (bsc#1051510).
  o mac80211: drop robust management frames from unknown TA (bsc#1051510).
  o mac80211: Fix kernel panic due to use of txq after free (bsc#1051510).
  o mac80211: handle deauthentication/disassociation from TDLS peer (bsc#
  o media: au0828: Fix NULL pointer dereference in au0828_analog_stream_enable
    () (bsc#1051510).
  o media: au0828: stop video streaming only when last user stops (bsc#
  o media: coda: clear error return value before picture run (bsc#1051510).
  o media: cpia2: Fix use-after-free in cpia2_exit (bsc#1051510).
  o media: cpia2_usb: first wake up, then free in disconnect (bsc#1135642).
  o media: go7007: avoid clang frame overflow warning with KASAN (bsc#1051510).
  o media: m88ds3103: serialize reset messages in m88ds3103_set_frontend (bsc#
  o media: marvell-ccic: fix DMA s/g desc number calculation (bsc#1051510).
  o media: ov2659: make S_FMT succeed even if requested format doesn't match
  o media: s5p-mfc: Make additional clocks optional (bsc#1051510).
  o media: saa7146: avoid high stack usage with clang (bsc#1051510).
  o media: smsusb: better handle optional alignment (bsc#1051510).
  o media: usb: siano: Fix false-positive "uninitialized variable" warning (bsc
  o media: usb: siano: Fix general protection fault in smsusb (bsc#1051510).
  o media: v4l2-ioctl: clear fields in s_parm (bsc#1051510).
  o media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() (bsc#
  o media: vivid: fix incorrect assignment operation when setting video mode
  o mei: bus: need to unlink client before freeing (bsc#1051510).
  o mei: me: add denverton innovation engine device IDs (bsc#1051510).
  o mei: me: add gemini lake devices id (bsc#1051510).
  o memory: tegra: Fix integer overflow on tick value calculation (bsc#
  o memstick: Fix error cleanup path of memstick_init (bsc#1051510).
  o Merge branch 'origin/users/jthumshirn/SLE15/for-next' into SLE15
  o Merge branch 'packaging' into SLE15
  o Merge branch 'scripts' into SLE15
  o Merge branch 'scripts' into SLE15
  o Merge branch 'SLE15_EMBARGO' into SLE12-SP4_EMBARGO
  o Merge branch 'SLE15_EMBARGO' into SLE12-SP4_EMBARGO
  o Merge branch 'SLE15_EMBARGO' into SLE15
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE12-SP4
  o Merge branch 'SLE15' into SLE15_EMBARGO
  o Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
  o Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
  o Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
  o Merge branch 'users/bpetkov/SLE15/for-next' into SLE15
  o Merge branch 'users/bpetkov/SLE15/for-next' into SLE15
  o Merge branch 'users/dkirjanov/SLE15/for-next' into SLE15
  o Merge branch 'users/fbaumanis/SLE15/for-next' into SLE15
  o Merge branch 'users/fdmanana/SLE15/for-next' into SLE15
  o Merge branch 'users/fdmanana/SLE15/for-next' into SLE15
  o Merge branch 'users/fyang/SLE15/for-next' into SLE15
  o Merge branch 'users/ggherdovich/SLE15/for-next' into SLE15
  o Merge branch 'users/glin/SLE15/for-next' into SLE15
  o Merge branch 'users/hare/SLE15/for-next' into SLE15
  o Merge branch 'users/hare/SLE15/for-next' into SLE15
  o Merge branch 'users/hare/SLE15/for-next' into SLE15
  o Merge branch 'users/hare/SLE15/for-next' into SLE15
  o Merge branch 'users/jack/SLE15/for-next' into SLE15
  o Merge branch 'users/jack/SLE15/for-next' into SLE15
  o Merge branch 'users/jack/SLE15/for-next' into SLE15
  o Merge branch 'users/jack/SLE15/for-next' into SLE15
  o Merge branch 'users/jdelvare/SLE15/for-next' into SLE15
  o Merge branch 'users/jgross/SLE15/for-next' into SLE15
  o Merge branch 'users/jroedel/SLE15/for-next' into SLE15
  o Merge branch 'users/jroedel/SLE15/for-next' into SLE15
  o Merge branch 'users/jslaby/SLE15/for-next' into SLE15
  o Merge branch 'users/jslaby/SLE15/for-next' into SLE15
  o Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
  o Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
  o Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
  o Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
  o Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
  o Merge branch 'users/lduncan/SLE15/for-next' into SLE15
  o Merge branch 'users/lduncan/SLE15/for-next' into SLE15
  o Merge branch 'users/lduncan/SLE15/for-next' into SLE15
  o Merge branch 'users/lduncan/SLE15/for-next' into SLE15
  o Merge branch 'users/lhenriques/SLE15/for-next' into SLE15
  o Merge branch 'users/lyan/SLE15/for-next' into SLE15
  o Merge branch 'users/lyan/SLE15/for-next' into SLE15
  o Merge branch 'users/mbenes/SLE15/for-next' into SLE15
  o Merge branch 'users/mbenes/SLE15/for-next' into SLE15
  o Merge branch 'users/mbrugger/SLE15/for-next' into SLE15
  o Merge branch 'users/mgorman/SLE15/for-next' into SLE15
  o Merge branch 'users/mgorman/SLE15/for-next' into SLE15
  o Merge branch 'users/mhocko/SLE12-SP4/bnc1136896' into users/mhocko/
  o Merge branch 'users/mhocko/SLE15/bnc1139358' into SLE15
  o Merge branch 'users/mhocko/SLE15/bnc1139358' into users/mhocko/SLE12-SP4/
  o Merge branch 'users/mhocko/SLE15/for-next' into SLE15
  o Merge branch 'users/mkoutny/SLE15/for-next' into SLE15
  o Merge branch 'users/mkubecek/SLE15/1137586' into SLE15_EMBARGO
  o Merge branch 'users/mkubecek/SLE15/1137586' into SLE15_EMBARGO
  o Merge branch 'users/mkubecek/SLE15/for-next' into SLE15
  o Merge branch 'users/mkubecek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/bsc1137534-s390-jumplabel-perf' into
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
  o Merge branch 'users/nfbrown/SLE15/for-next' into SLE15
  o Merge branch 'users/nfbrown/SLE15/for-next' into SLE15
  o Merge branch 'users/ohering/SLE15/for-next' into SLE15
  o Merge branch 'users/oneukum/SLE15/for-next' into SLE15
  o Merge branch 'users/oneukum/SLE15/for-next' into SLE15
  o Merge branch 'users/oneukum/SLE15/for-next' into SLE15
  o Merge branch 'users/oneukum/SLE15/for-next' into SLE15
  o Merge branch 'users/oneukum/SLE15/for-next' into SLE15
  o Merge branch 'users/oneukum/SLE15/for-next' into SLE15
  o Merge branch 'users/osalvador/SLE15/for-next' into SLE15
  o Merge branch 'users/ptesarik/SLE15/for-next' into SLE15
  o Merge branch 'users/pvorel/SLE15/for-next' into SLE15
  o Merge branch 'users/tbogendoerfer/SLE15/for-next' into SLE15
  o Merge branch 'users/tzimmermann/SLE15/for-next' into SLE15
  o Merge branch 'users/vbabka/SLE15/for-next' into SLE15
  o Merge branch 'users/vbabka/SLE15/for-next' into SLE15
  o Merge branch 'users/vbabka/SLE15/for-next' into SLE15
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4_EMBARGO
  o Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4_EMBARGO
  o Merge remote-tracking branch 'origin/users/fyang/SLE12-SP4/for-next' into
  o Merge remote-tracking branch 'origin/users/ghe/SLE12-SP4/for-next' into
  o Merge remote-tracking branch 'origin/users/mfleming/SLE12-SP4/for-next'
    into SLE12-SP4
  o Merge remote-tracking branch 'origin/users/mhocko/SLE12-SP4/for-next' into
  o Merge remote-tracking branch 'origin/users/msuchanek/SLE12-SP4/for-next'
    into SLE12-SP4
  o mfd: da9063: Fix OTP control register names to match datasheets for DA9063/
    63L (bsc#1051510).
  o mfd: hi655x: Fix regmap area declared size for hi655x (bsc#1051510).
  o mfd: intel-lpss: Release IDA resources (bsc#1051510).
  o mfd: intel-lpss: Set the device in reset state when init (bsc#1051510).
  o mfd: max77620: Fix swapped FPS_PERIOD_MAX_US values (bsc#1051510).
  o mfd: tps65912-spi: Add missing of table registration (bsc#1051510).
  o mfd: twl6040: Fix device init errors for ACCCTL register (bsc#1051510).
  o mISDN: make sure device name is NUL terminated (bsc#1051510).
  o mmc: core: make pwrseq_emmc (partially) support sleepy GPIO controllers
  o mmc: core: Prevent processing SDIO IRQs when the card is suspended (bsc#
  o mmc: core: Verify SD bus width (bsc#1051510).
  o mmc: mmci: Prevent polling for busy detection in IRQ context (bsc#1051510).
  o mmc: sdhci-iproc: cygnus: Set NO_HISPD bit to fix HS50 data hold time
    problem (bsc#1051510).
  o mmc: sdhci-iproc: Set NO_HISPD bit to fix HS50 data hold time problem (bsc#
  o mmc: sdhci-of-esdhc: add erratum A-009204 support (bsc#1051510).
  o mmc: sdhci-of-esdhc: add erratum eSDHC5 support (bsc#1051510).
  o mmc: sdhci-of-esdhc: add erratum eSDHC-A001 and A-008358 support (bsc#
  o mmc: sdhci-pci: Try "cd" for card-detect lookup before using NULL (bsc#
  o mmc_spi: add a status check for spi_sync_locked (bsc#1051510).
  o mm: migrate: Fix reference check race between __find_get_block() and
    migration (bnc#1137609).
  o mm/nvdimm: add is_ioremap_addr and use that to check ioremap address (bsc#
    1140322 LTC#176270).
  o mm, page_alloc: fix has_unmovable_pages for HugePages (bsc#1127034).
  o mm: pagechage-limit: Calculate pagecache-limit based on node state (bsc#
  o mm: replace all open encodings for NUMA_NO_NODE (bsc#1140322 LTC#176270).
  o mm: thp: relax __GFP_THISNODE for MADV_HUGEPAGE mappings (bnc#1012382).
  o mm/vmscan.c: prevent useless kswapd loops (git fixes (mm/vmscan)).
  o module: Fix livepatch/ftrace module text permissions race (bsc#1071995 fate
  o mount: copy the port field into the cloned nfs_server structure (bsc#
  o Move patch to correct directory.
  o Move stuff git_sort chokes on, out of the way
  o Move upstreamed ASoC patches into sorted section
  o mwifiex: Abort at too short BSS descriptor element (bsc#1136424
  o mwifiex: Don't abort on small, spec-compliant vendor IEs (CVE-2019-3846,bsc
  o mwifiex: fix 802.11n/WPA detection (CVE-2019-3846,bsc#1136424).
  o mwifiex: Fix heap overflow in mwifiex_uap_parse_tail_ies() (bsc#1136935).
  o mwifiex: Fix possible buffer overflows at parsing bss descriptor
  o neighbor: Call __ipv4_neigh_lookup_noref in neigh_xmit (git-fixes).
  o neigh: fix use-after-free read in pneigh_get_next
  o net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142112 bsc
    #1142221 LTC#179334 LTC#179332).
  o net: avoid weird emergency message (networking-stable-19_05_21).
  o net: fec: fix the clk mismatch in failed_reset path
  o netfilter: conntrack: fix calculation of next bucket number in early_drop
  o net-gro: fix use-after-free read in napi_gro_frags()
  o net/ibmvnic: Remove tests of member address (bsc#1137739).
  o net/mlx4_core: Change the error print to info print
  o net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query
  o net/mlx5: Allocate root ns memory using kzalloc to match kfree
  o net/mlx5: Avoid double free in fs init error unwinding path
  o net: mvneta: Fix err code path of probe (networking-stable-19_05_31).
  o net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value
  o net: mvpp2: prs: Fix parser range for VID filtering (bsc#1098633).
  o net: mvpp2: prs: Use the correct helpers when removing all VID filters (bsc
  o net: mvpp2: Use strscpy to handle stat strings (bsc#1098633).
  o netns: get more entropy from net_hash_mix() (CVE-2019-10638 bsc#1140575).
  o netns: provide pure entropy for net_hash_mix() (CVE-2019-10639 bsc#
  o net: openvswitch: do not free vport if register_netdevice() is failed
  o net/packet: fix memory leak in packet_set_ring() (git-fixes).
  o net: rds: fix memory leak in rds_ib_flush_mr_pool
  o net: seeq: fix crash caused by not set dev.parent
  o net: stmmac: fix reset gpio free missing (networking-stable-19_05_31).
  o net: unbreak CONFIG_RETPOLINE=n builds (bsc#1124503).
  o net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions
  o net: use indirect call wrappers at GRO network layer (bsc#1124503).
  o net: use indirect call wrappers at GRO transport layer (bsc#1124503).
  o nfit/ars: Allow root to busy-poll the ARS state machine (bsc#1140814).
  o nfit/ars: Avoid stale ARS results (jsc#SLE-5433).
  o nfit/ars: Introduce scrub_flags (jsc#SLE-5433).
  o NFS add module option to limit NFSv4 minor version (jsc#PM-231).
  o ntp: Allow TAI-UTC offset to be set to zero (bsc#1135642).
  o nvme: copy MTFA field from identify controller (bsc#1140715).
  o nvme: fix memory leak caused by incorrect subsystem free (bsc#1143185).
  o nvmem: allow to select i.MX nvmem driver for i.MX 7D (bsc#1051510).
  o nvmem: core: fix read buffer in place (bsc#1051510).
  o nvmem: correct Broadcom OTP controller driver writes (bsc#1051510).
  o nvmem: Don't let a NULL cell_id for nvmem_cell_get() crash us (bsc#
  o nvmem: imx-ocotp: Add i.MX7D timing write clock setup support (bsc#
  o nvmem: imx-ocotp: Add support for banked OTP addressing (bsc#1051510).
  o nvmem: imx-ocotp: Enable i.MX7D OTP write support (bsc#1051510).
  o nvmem: imx-ocotp: Move i.MX6 write clock setup to dedicated function (bsc#
  o nvmem: imx-ocotp: Pass parameters via a struct (bsc#1051510).
  o nvmem: imx-ocotp: Restrict OTP write to IMX6 processors (bsc#1051510).
  o nvmem: imx-ocotp: Update module description (bsc#1051510).
  o nvmem: properly handle returned value nvmem_reg_read (bsc#1051510).
  o nvme-rdma: fix double freeing of async event data (bsc#1120423).
  o nvme-rdma: fix possible double free of controller async event buffer (bsc#
  o nvme-rdma: fix possible free of a non-allocated async event buffer (bsc#
  o nvme: skip nvme_update_disk_info() if the controller is not live (bsc#
  o ocfs2: add first lock wait time in locking_state (bsc#1134390).
  o ocfs2: add last unlock times in locking_state (bsc#1134390).
  o ocfs2: add locking filter debugfs file (bsc#1134390).
  o ocfs2: try to reuse extent block in dealloc without meta_alloc (bsc#
  o ocfs2: turn on OCFS2_FS_STATS setting(bsc#1134393)
  o of: fix clang -Wunsequenced for be32_to_cpu() (bsc#1135642).
  o packet: Fix error path in packet_init (networking-stable-19_05_14).
  o packet: in recvmsg msg_name return at least sizeof sockaddr_ll (git-fixes).
  o parport: Fix mem leak in parport_register_dev_model (bsc#1051510).
  o patches.fixes/mm-Fix-modifying-of-page-protection-by-insert_pfn.patch: Fix
    buggy backport leading to MAP_SYNC failures (bsc#1137372) -

patches.fixes/scsi-vmw_pscsi-Fix-use-after-free-in-pvscsi_queue_lc.patch: U
pdate patch metadata
patches.suse/Btrfs-kill-btrfs_clear_path_blocking.patch: (bsc#1140139).
PCI: Always allow probing with driver_override (bsc#1051510).
PCI: Do not poll for PME if the device is in D3cold (bsc#1051510).
PCI: hv: Add hv_pci_remove_slots() when we unload the driver (bsc#1142701).
PCI: hv: Add pci_destroy_slot() in pci_devices_present_work(), if necessary
PCI: hv: Fix a memory leak in hv_eject_device_work() (bsc#1142701).
PCI: hv: Fix a use-after-free bug in hv_eject_device_work() (bsc#1142701).
PCI: hv: Fix return value check in hv_pci_assign_slots() (bsc#1142701).
PCI: hv: Remove unused reason for refcount handler (bsc#1142701).
PCI: hv: support reporting serial number as slot information (bsc#1142701).
PCI: PM: Avoid possible suspend-to-idle issue (bsc#1051510).
PCI: PM: Skip devices in D0 for suspend-to-idle (bsc#1051510).
PCI: Return error if cannot probe VF (bsc#1051510).
PCI: rpadlpar: Fix leaked device_node references in add/remove paths (bsc#
perf tools: Add Hygon Dhyana support (fate#327735).
perf/x86/intel/cstate: Support multi-die/package (jsc#SLE-5454).
perf/x86/intel/rapl: Cosmetic rename internal variables in response to
multi-die/pkg support (jsc#SLE-5454).
perf/x86/intel/rapl: Support multi-die/package (jsc#SLE-5454).
perf/x86/intel/uncore: Cosmetic renames in response to multi-die/pkg support
perf/x86/intel/uncore: Support multi-die/package (jsc#SLE-5454).
pkey: Indicate old mkvp only if old and current mkvp are different (bsc#1137827
pktgen: do not sleep with the thread lock held (git-fixes).
platform/chrome: cros_ec_proto: check for NULL transfer function (bsc#1051510).
platform/x86: asus-nb-wmi: Support ALS on the Zenbook UX430UQ (bsc#1051510).
platform/x86: asus-wmi: Only Tell EC the OS will handle display hotkeys from
asus_nb_wmi (bsc#1051510).
platform/x86: intel_turbo_max_3: Remove restriction for HWP platforms (jsc#
platform/x86: mlx-platform: Fix parent device in i2c-mux-reg device
registration (bsc#1051510).
platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to critclk_systems
DMI table (bsc#1051510).
PM / core: Propagate dev->power.wakeup_path when no callbacks (bsc#1051510).
powercap/intel_rapl: Simplify rapl_find_package() (jsc#SLE-5454).
powercap/intel_rapl: Support multi-die/package (jsc#SLE-5454).
powercap/intel_rapl: Update RAPL domain name and debug messages (jsc#SLE-5454).
powerpc/64s: Remove POWER9 DD1 support (bsc#1055117, LTC#159753, FATE#323286,
powerpc: Always initialize input array when calling epapr_hypercall() (bsc#
powerpc/cacheinfo: add cacheinfo_teardown, cacheinfo_rebuild (bsc#1138374, LTC#
powerpc/crypto: Use cheaper random numbers for crc-vpmsum self-test (FATE#
powerpc/eeh: Fix race with driver un/bind (bsc#1065729).
powerpc: Fix HMIs on big-endian with CONFIG_RELOCATABLE=y (bsc#1065729).
powerpc/mm: Change function prototype (bsc#1055117).
powerpc/mm: Consolidate numa_enable check and min_common_depth check (bsc#
1140322 LTC#176270).
powerpc/mm/drconf: Use NUMA_NO_NODE on failures instead of node 0 (bsc#1140322
powerpc/mm: Fix node look up with numa=off boot (bsc#1140322 LTC#176270).
powerpc/mm/hugetlb: Update huge_ptep_set_access_flags to call
__ptep_set_access_flags directly (bsc#1055117).
powerpc/mm/radix: Change pte relax sequence to handle nest MMU hang (bsc#
powerpc/mm/radix: Move function from radix.h to pgtable-radix.c (bsc#1055117).
powerpc/msi: Fix NULL pointer access in teardown code (bsc#1065729).
powerpc/perf: Add PM_LD_MISS_L1 and PM_BR_2PATH to power9 event list (bsc#
1137728, LTC#178106).
powerpc/perf: Add POWER9 alternate PM_RUN_CYC and PM_RUN_INST_CMPL events (bsc#
1137728, LTC#178106).
powerpc/perf: Fix MMCRA corruption by bhrb_filter (bsc#1053043).
powerpc/powernv/idle: Restore IAMR after idle (bsc#1065729).
powerpc/process: Fix sparse address space warnings (bsc#1065729).
powerpc/pseries/dlpar: Fix a missing check in dlpar_parse_cc_property() (bsc#
1137194, CVE-2019-12614).
powerpc/pseries: Fix oops in hotplug memory notifier (bsc#1138375, LTC#178204).
powerpc/pseries/mobility: prevent cpu hotplug during DT update (bsc#1138374,
powerpc/pseries/mobility: rebuild cacheinfo hierarchy post-migration (bsc#
1138374, LTC#178199).
powerpc/rtas: retry when cpu offline races with suspend/migration (bsc#1140428,
powerpc/tm: Fix oops on sigreturn on systems without TM (bsc#1142265
powerpc/watchpoint: Restore NV GPRs while returning from exception (bsc#1140945
bsc#1141401 bsc#1141402 bsc#1141452 bsc#1141453 bsc#1141454 LTC#178983 LTC#
179191 LTC#179192 LTC#179193 LTC#179194 LTC#179195).
power: supply: max14656: fix potential use-before-alloc (bsc#1051510).
power: supply: sysfs: prevent endless uevent loop with
ppp: deflate: Fix possible crash in deflate_init (networking-stable-19_05_21).
ppp: mppe: Add softdep to arc4 (bsc#1088047).
ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (git-fixes).
ptrace: restore smp_rmb() in __ptrace_may_access() (git-fixes).
pwm: stm32: Use 3 cells ->of_xlate() (bsc#1111666).
qlcnic: Avoid potential NULL pointer dereference (bsc#1051510).
qmi_wwan: add network device usage statistics for qmimux devices (bsc#1051510).
qmi_wwan: Add quirk for Quectel dynamic config (bsc#1051510).
qmi_wwan: add support for QMAP padding in the RX path (bsc#1051510).
qmi_wwan: avoid RCU stalls on device disconnect when in QMAP mode (bsc#
qmi_wwan: extend permitted QMAP mux_id value range (bsc#1051510).
qmi_wwan: Fix out-of-bounds read (bsc#1111666).
rapidio: fix a NULL pointer dereference when create_workqueue() fails (bsc#
ras/CEC: Convert the timer callback to a workqueue (bsc#1114279).
ras/CEC: Fix binary search function (bsc#1114279).
rds: IB: fix 'passing zero to ERR_PTR()' warning (git-fixes).
regulator: s2mps11: Fix buck7 and buck8 wrong voltages (bsc#1051510).
Replace the bluetooth fix with the upstream commit (bsc#1135556)
Revert "alsa: hda/realtek - Improve the headset mic for Acer Aspire laptops"
Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()" (bsc#
Revert "Drop multiversion(kernel) from the KMP template (fate#323189)" (bsc#
Revert "e1000e: fix cyclic resets at link up with active tx" (bsc#1051510).
Revert "HID: wacom: generic: Send BTN_TOOL_PEN in prox once the pen enters
range" (bsc#1051510).
Revert "KMPs: obsolete older KMPs of the same flavour (bsc#1127155, bsc#
Revert "KMPs: provide and conflict a kernel version specific KMP name"
Revert "livepatch: Remove reliable stacktrace check in klp_try_switch_task()"
(bsc#1071995 fate#323487).
Revert "Revert "Drop multiversion(kernel) from the KMP template (fate#323189)""
Revert "Revert "KMPs: obsolete older KMPs of the same flavour (bsc#1127155, bsc
Revert "Revert "KMPs: provide and conflict a kernel version specific KMP name""
Revert "Revert "Revert "Drop multiversion(kernel) from the KMP template (fate#
Revert "s390/jump_label: Use "jdd" constraint on gcc9 (bsc#1138589)."
Revert "serial: 8250: Don't service RX FIFO if interrupts are disabled" (bsc#
Revert "Sign non-x86 kernels when possible (boo#1134303)"
Revert "svm: Fix AVIC incomplete IPI emulation" (bsc#1140133).
rpm/kernel-binary.spec.in: Add back kernel-binary-base subpackage (jsc#
rpm/kernel-binary.spec.in: Build livepatch support in SUSE release projects
rpm/kernel-binary.spec.in: Update drm-kmp obsolete for SLE12-SP3/Leap-42.3
rpm/post.sh: correct typo in err msg (bsc#1137625)
rtc: 88pm860x: prevent use-after-free on device remove (bsc#1051510).
rtc: don't reference bogus function pointer in kdoc (bsc#1051510).
rtlwifi: fix a potential NULL pointer dereference (bsc#1051510).
rtnetlink: always put IFLA_LINK for links with a link-netnsid
s390/dasd: fix using offset into zero size array error (bsc#1051510).
s390/jump_label: Use "jdd" constraint on gcc9 (bsc#1138589).
s390/jump_label: Use "jdd" constraint on gcc9 (bsc#1138589).
s390/qeth: be drop monitor friendly (bsc#1142220 LTC#179335).
s390/qeth: fix race when initializing the IP address table (bsc#1051510).
s390/qeth: fix VLAN attribute in bridge_hostnotify udev event (bsc#1051510).
s390/setup: fix early warning messages (bsc#1051510).
s390/virtio: handle find on invalid queue gracefully (bsc#1051510).
s390/vtime: steal time exponential moving average (bsc#1119222).
s390/zcrypt: Fix wrong dispatching for control domain CPRBs (bsc#1137811 LTC#
sbitmap: fix improper use of smp_mb__before_atomic() (bsc#1140658).
sched/topology: Improve load balancing on AMD EPYC (bsc#1137366).
scripts/tar-up.sh: do not make assumptions about the remote name (bsc#1141488)
scsi: core: add new RDAC LENOVO/DE_Series device (bsc#1132390).
scsi: ibmvfc: fix WARN_ON during event pool release (bsc#1137458 LTC#178093).
scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836 bsc#
scsi: megaraid_sas: return error when create DMA pool failed (CVE-2019-11810
scsi: mpt3sas_ctl: fix double-fetch bug in _ctl_ioctl_main() (bsc#1136922
scsi: qla2xxx: Declare local functions 'static' (bsc#1137444).
scsi: qla2xxx: Fix abort handling in tcm_qla2xxx_write_pending() (bsc#1140727).
scsi: qla2xxx: fix error message on <qla2400 (bsc#1118139).
scsi: qla2xxx: Fix FC-AL connection target discovery (bsc#1094555).
scsi: qla2xxx: Fix function argument descriptions (bsc#1118139).
scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines (bsc#
scsi: qla2xxx: Fix memory corruption during hba reset test (bsc#1118139).
scsi: qla2xxx: Fix N2N target discovery with Local loop (bsc#1094555).
scsi: qla2xxx: fix spelling mistake: "existant" -> "existent" (bsc#1118139).
scsi: qla2xxx: fully convert to the generic DMA API (bsc#1137444).
scsi: qla2xxx: fx00 copypaste typo (bsc#1118139).
scsi: qla2xxx: Improve several kernel-doc headers (bsc#1137444).
scsi: qla2xxx: Introduce a switch/case statement in qlt_xmit_tm_rsp() (bsc#
scsi: qla2xxx: Make qla2x00_sysfs_write_nvram() easier to analyze (bsc#
scsi: qla2xxx: Make sure that qlafx00_ioctl_iosb_entry() initializes 'res' (bsc
scsi: qla2xxx: NULL check before some freeing functions is not needed (bsc#
scsi: qla2xxx: Remove a set-but-not-used variable (bsc#1137444).
scsi: qla2xxx: remove the unused tcm_qla2xxx_cmd_wq (bsc#1118139).
scsi: qla2xxx: Remove two arguments from qlafx00_error_entry() (bsc#1137444).
scsi: qla2xxx: Remove unused symbols (bsc#1118139).
scsi: qla2xxx: Split the __qla2x00_abort_all_cmds() function (bsc#1137444).
scsi: qla2xxx: use lower_32_bits and upper_32_bits instead of reinventing them
scsi: qla2xxx: Use %p for printing pointers (bsc#1118139).
scsi: target/iblock: Fix overrun in WRITE SAME emulation (bsc#1140424).
scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck() (bsc#1135296).
scsi: zfcp: fix missing zfcp_port reference put on -EBUSY from port_remove (bsc
scsi: zfcp: fix rport unblock if deleted SCSI devices on Scsi_Host (bsc#
scsi: zfcp: fix scsi_eh host reset with port_forced ERP for non-NPIV FCP
devices (bsc#1051510).
scsi: zfcp: fix to prevent port_remove with pure auto scan LUNs (only sdevs)
sctp: Free cookie before we memdup a new one (networking-stable-19_06_18).
sctp: silence warns on sctp_stream_init allocations (bsc#1083710).
serial: sh-sci: disable DMA for uart_console (bsc#1051510).
serial: uartps: Do not add a trailing semicolon to macro (bsc#1051510).
serial: uartps: Fix long line over 80 chars (bsc#1051510).
serial: uartps: Fix multiple line dereference (bsc#1051510).
serial: uartps: Remove useless return from cdns_uart_poll_put_char (bsc#
signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO
Sign non-x86 kernels when possible (boo#1134303)
SMB3: Fix endian warning (bsc#1137884).
soc: mediatek: pwrap: Zero initialize rdata in pwrap_init_cipher (bsc#1051510).
soc: rockchip: Set the proper PWM for rk3288 (bsc#1051510).
spi: bitbang: Fix NULL pointer dereference in spi_unregister_master (bsc#
spi: Fix zero length xfer bug (bsc#1051510).
spi: pxa2xx: Add support for Intel Comet Lake (jsc#SLE-5331).
spi: pxa2xx: fix SCR (divisor) calculation (bsc#1051510).
spi: spi-fsl-spi: call spi_finalize_current_message() at the end (bsc#1051510).
spi : spi-topcliff-pch: Fix to handle empty DMA buffers (bsc#1051510).
spi: tegra114: reset controller on probe (bsc#1051510).
staging: comedi: amplc_pci230: fix null pointer deref on interrupt (bsc#
staging: comedi: dt282x: fix a null pointer deref on interrupt (bsc#1051510).
staging: comedi: ni_mio_common: Fix divide-by-zero for DIO cmdtest (bsc#
staging:iio:ad7150: fix threshold mode config bit (bsc#1051510).
staging: rtl8712: reduce stack usage, again (bsc#1051510).
Staging: vc04_services: Fix a couple error codes (bsc#1051510).
staging: vc04_services: prevent integer overflow in create_pagelist() (bsc#
staging: wlan-ng: fix adapter initialization failure (bsc#1051510).
sunhv: Fix device naming inconsistency between sunhv_console and sunhv_reg
svm: Add warning message for AVIC IPI invalid target (bsc#1140133).
svm: Fix AVIC incomplete IPI emulation (bsc#1140133).
sysctl: handle overflow in proc_get_long (bsc#1051510).
tcp: add tcp_min_snd_mss sysctl (bsc#1137586).
tcp: be more careful in tcp_fragment() (CVE-2019-11478 bsc#1137586 bsc#
tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() (bsc#1137586).
tcp: fix fack_count accounting on tcp_shift_skb_data() (CVE-2019-11477 bsc#
tcp: limit payload size of sacked skbs (bsc#1137586).
tcp: reduce tcp_fastretrans_alert() verbosity (git-fixes).
tcp: refine memory limit test in tcp_fragment() (CVE-2019-11478 bsc#1137586 bsc
tcp: tcp_fragment() should apply sane memory limits (bsc#1137586).
team: Always enable vlan tx offload (bsc#1051510).
test_firmware: Use correct snprintf() limit (bsc#1135642).
thermal: rcar_gen3_thermal: disable interrupt in .remove (bsc#1051510).
thermal/x86_pkg_temp_thermal: Cosmetic: Rename internal variables to zones from
packages (jsc#SLE-5454).
thermal/x86_pkg_temp_thermal: Support multi-die/package (jsc#SLE-5454).
thunderbolt: Fix to check for kmemdup failure (bsc#1051510).
tipc: fix hanging clients using poll with EPOLLOUT flag (git-fixes).
tmpfs: fix link accounting when a tmpfile is linked in (bsc#1051510).
tmpfs: fix uninitialized return value in shmem_link (bsc#1051510).
tools/cpupower: Add Hygon Dhyana support (fate#327735).
topology: Create core_cpus and die_cpus sysfs attributes (jsc#SLE-5454).
topology: Create package_cpus sysfs attribute (jsc#SLE-5454).
tracing/snapshot: Resize spare buffer if size changed (bsc#1140726).
treewide: Use DEVICE_ATTR_WO (bsc#1137739).
Trim build dependencies of sample subpackage spec file (FATE#326579, jsc#
SLE-4117, jsc#SLE-3853, bsc#1128910).
tty: ipwireless: fix missing checks for ioremap (bsc#1051510).
tty: max310x: Fix external crystal register setup (bsc#1051510).
tty: rocket: fix incorrect forward declaration of 'rp_init()' (bsc#1051510).
tty: serial_core: Set port active bit in uart_port_activate (bsc#1051510).
tty: serial: cpm_uart - fix init when SMC is relocated (bsc#1051510).
tty: serial: msm_serial: Fix XON/XOFF (bsc#1051510).
tty/vt: fix write/write race in ioctl(KDSKBSENT) handler (bsc#1051510).
tuntap: synchronize through tfiles array instead of tun->numqueues
udp: use indirect call wrappers for GRO socket lookup (bsc#1124503).
Update config files for NFSv4.2
Update patches.fixes/
0001-mwifiex-Fix-heap-overflow-in-mwifiex_uap_parse_tail_.pat ch (bsc#1136935
CVE-2019-10126). Added CVE number
Update patches.fixes/nfsd-COPY-and-CLONE-operations-require-the-saved-fil.patch
(git-fixes, bsc#1137103, CVE-2018-16871).
Update patches.suse/do-not-default-to-ibrs-on-skl.patch (bsc#1068032
CVE-2017-5753 bsc#1112824 jsc#SLE-7074).
Update patch referecens for two sercurity fixes (CVE-2019-12819, bsc#1138291,
CVE-2019-12818, bsc#1138293).
Update References field to patches.suse/
0275-bcache-never-writeback-a-discard-operation.patch (bsc#1130972, bsc#
Update "SACK Panic" patches to reflect upstream state.
Update upstream patch tags
USB: Add LPM quirk for Surface Dock GigE adapter (bsc#1051510).
usb: chipidea: udc: workaround for endpoint conflict issue (bsc#1135642).
usb: core: Add PM runtime calls to usb_hcd_platform_shutdown (bsc#1051510).
USB: core: Don't unbind interfaces following device reset failure (bsc#
usb: dwc2: Fix DMA cache alignment issues (bsc#1051510).
usb: dwc2: host: Fix wMaxPacketSize handling (fix webcam regression) (bsc#
USB: Fix chipmunk-like voice when using Logitech C270 for recording audio (bsc#
USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor (bsc#1051510).
usb: gadget: ether: Fix race between gether_disconnect and rx_submit (bsc#
usb: gadget: fusb300_udc: Fix memory leak of fusb300->ep[i] (bsc#1051510).
usb: gadget: udc: lpc32xx: allocate descriptor with GFP_ATOMIC (bsc#1051510).
usbip: usbip_host: fix BUG: sleeping function called from invalid context (bsc#
usbip: usbip_host: fix stub_dev lock context imbalance regression (bsc#
usbnet: fix kernel crash after disconnect (bsc#1051510).
usbnet: ipheth: fix racing condition (bsc#1051510).
usb: pci-quirks: Correct AMD PLL quirk detection (bsc#1051510).
USB: rio500: fix memory leak in close after disconnect (bsc#1051510).
USB: rio500: refuse more than one device at a time (bsc#1051510).
USB: serial: fix initial-termios handling (bsc#1135642).
USB: serial: ftdi_sio: add ID for isodebug v1 (bsc#1051510).
USB: serial: option: add support for GosunCn ME3630 RNDIS mode (bsc#1051510).
USB: serial: option: add support for Simcom SIM7500/SIM7600 RNDIS mode (bsc#
USB: serial: option: add Telit 0x1260 and 0x1261 compositions (bsc#1051510).
USB: serial: pl2303: add Allied Telesis VT-Kit3 (bsc#1051510).
USB: serial: pl2303: fix tranceiver suspend mode (bsc#1135642).
USB: sisusbvga: fix oops in error path of sisusb_probe (bsc#1051510).
USB: usb-storage: Add new ID to ums-realtek (bsc#1051510).
usb: xhci: avoid null pointer deref when bos field is NULL (bsc#1135642).
vfio: ccw: only free cp on final interrupt (bsc#1051510).
video: hgafb: fix potential NULL pointer dereference (bsc#1051510).
video: imsttfb: fix potential NULL pointer dereferences (bsc#1051510).
virtio_console: initialize vtermno value for ports (bsc#1051510).
vlan: disable SIOCSHWTSTAMP in container (bsc#1051510).
VMCI: Fix integer overflow in VMCI handle arrays (bsc#1051510).
vrf: sit mtu should not be updated when vrf netdev is the link
vsock/virtio: free packets during the socket release
vsock/virtio: set SOCK_DONE on peer shutdown (networking-stable-19_06_18).
vxlan: trivial indenting fix (bsc#1051510).
vxlan: use __be32 type for the param vni in __vxlan_fdb_delete (bsc#1051510).
w1: fix the resume command API (bsc#1051510).
watchdog: imx2_wdt: Fix set_timeout for big timeout values (bsc#1051510).
wil6210: fix potential out-of-bounds read (bsc#1051510).
x86/alternative: Init ideal_nops for Hygon Dhyana (fate#327735).
x86/amd_nb: Add support for Raven Ridge CPUs (FATE#327735).
x86/amd_nb: Check vendor in AMD-only functions (fate#327735).
x86/apic: Add Hygon Dhyana support (fate#327735).
x86/bugs: Add Hygon Dhyana to the respective mitigation machinery (fate#
x86/CPU/AMD: Don't force the CPB cap when running under a hypervisor (bsc#
x86/cpu: Create Hygon Dhyana architecture support file (fate#327735).
x86/cpufeatures: Carve out CQM features retrieval (jsc#SLE-5382).
x86/cpufeatures: Combine word 11 and 12 into a new scattered features word (jsc
x86/cpufeatures: Enumerate the new AVX512 BFLOAT16 instructions (jsc#SLE-5382).
x86/cpu: Get cache info and setup cache cpumap for Hygon Dhyana (fate#327735).
x86/CPU/hygon: Fix phys_proc_id calculation logic for multi-die processors
x86/cpu/mtrr: Support TOP_MEM2 and get MTRR number (fate#327735).
x86/events: Add Hygon Dhyana support to PMU infrastructure (fate#327735).
x86/kvm: Add Hygon Dhyana support to KVM (fate#327735).
x86/mce: Add Hygon Dhyana support to the MCA infrastructure (fate#327735).
x86/mce: Don't disable MCA banks when offlining a CPU on AMD (fate#327735).
x86/mce: Fix machine_check_poll() tests for error types (bsc#1114279).
x86/microcode, cpuhotplug: Add a microcode loader CPU hotplug callback (bsc#
x86/microcode: Fix microcode hotplug state (bsc#1114279).
x86/microcode: Fix the ancient deprecated microcode loading method (bsc#
x86, mm: fix fast GUP with hyper-based TLB flushing (VM Functionality, bsc#
x86/mm/mem_encrypt: Disable all instrumentation for early SME setup (bsc#
x86/pci, x86/amd_nb: Add Hygon Dhyana support to PCI and northbridge (fate#
x86/smpboot: Do not use BSP INIT delay and MWAIT to idle on Dhyana (fate#
x86/smpboot: Rename match_die() to match_pkg() (jsc#SLE-5454).
x86/speculation/mds: Revert CPU buffer clear on double fault exit (bsc#
x86/speculation/swapgs: Exclude ATOMs from speculation through SWAPGS (bsc#
1139358, CVE-2019-1125).
x86/topology: Add CPUID.1F multi-die/package support (jsc#SLE-5454).
x86/topology: Create topology_max_die_per_package() (jsc#SLE-5454).
x86/topology: Define topology_die_id() (jsc#SLE-5454).
x86/topology: Define topology_logical_die_id() (jsc#SLE-5454).
x86/xen: Add Hygon Dhyana support to Xen (fate#327735).
xen: let alloc_xenballooned_pages() fail if not enough memory free (bsc#1142450
xen/pciback: Don't disable PCI_COMMAND on PCI device reset (bsc#1065600).
xfs: do not set the page uptodate in xfs_writepage_map (bsc#1138003).
xfs: don't clear imap_valid for a non-uptodate buffers (bsc#1138018).
xfs: don't look at buffer heads in xfs_add_to_ioend (bsc#1138013).
xfs: don't overflow xattr listent buffer (bsc#1143105).
xfs: don't use XFS_BMAPI_ENTRIRE in xfs_get_blocks (bsc#1137999).
xfs: don't use XFS_BMAPI_IGSTATE in xfs_map_blocks (bsc#1138005).
xfs: eof trim writeback mapping as soon as it is cached (bsc#1138019).
xfs: fix s_maxbytes overflow problems (bsc#1137996).
xfs: make xfs_writepage_map extent map centric (bsc#1138009).
xfs: minor cleanup for xfs_get_blocks (bsc#1138000).
xfs: move all writeback buffer_head manipulation into xfs_map_at_offset (bsc#
xfs: refactor the tail of xfs_writepage_map (bsc#1138016).
xfs: remove the imap_valid flag (bsc#1138012).
xfs: remove unused parameter from xfs_writepage_map (bsc#1137995).
xfs: remove XFS_IO_INVALID (bsc#1138017).
xfs: remove xfs_map_cow (bsc#1138007).
xfs: remove xfs_reflink_find_cow_mapping (bsc#1138010).
xfs: remove xfs_reflink_trim_irec_to_next_cow (bsc#1138006).
xfs: remove xfs_start_page_writeback (bsc#1138015).
xfs: rename the offset variable in xfs_writepage_map (bsc#1138008).
xfs: simplify xfs_map_blocks by using xfs_iext_lookup_extent directly (bsc#
xfs: skip CoW writes past EOF when writeback races with truncate (bsc#1137998).
xfs: xfs_reflink_convert_cow() memory allocation deadlock (bsc#1138002).
xhci: Convert xhci_handshake() to use readl_poll_timeout_atomic() (bsc#
xhci: update bounce buffer with correct sg num (bsc#1051510).
xhci: Use %zu for printing size_t type (bsc#1051510).

Special Instructions and Notes:

Please reboot the system after installing this update.

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  o SUSE Linux Enterprise Real Time Extension 12-SP4:
    zypper in -t patch SUSE-SLE-RT-12-SP4-2019-2450=1

Package List:

  o SUSE Linux Enterprise Real Time Extension 12-SP4 (noarch):
  o SUSE Linux Enterprise Real Time Extension 12-SP4 (x86_64):


  o https://www.suse.com/security/cve/CVE-2018-16871.html
  o https://www.suse.com/security/cve/CVE-2018-20836.html
  o https://www.suse.com/security/cve/CVE-2018-20855.html
  o https://www.suse.com/security/cve/CVE-2019-10126.html
  o https://www.suse.com/security/cve/CVE-2019-10638.html
  o https://www.suse.com/security/cve/CVE-2019-10639.html
  o https://www.suse.com/security/cve/CVE-2019-1125.html
  o https://www.suse.com/security/cve/CVE-2019-11477.html
  o https://www.suse.com/security/cve/CVE-2019-11478.html
  o https://www.suse.com/security/cve/CVE-2019-11599.html
  o https://www.suse.com/security/cve/CVE-2019-11810.html
  o https://www.suse.com/security/cve/CVE-2019-12380.html
  o https://www.suse.com/security/cve/CVE-2019-12456.html
  o https://www.suse.com/security/cve/CVE-2019-12614.html
  o https://www.suse.com/security/cve/CVE-2019-12818.html
  o https://www.suse.com/security/cve/CVE-2019-12819.html
  o https://www.suse.com/security/cve/CVE-2019-13631.html
  o https://www.suse.com/security/cve/CVE-2019-13648.html
  o https://www.suse.com/security/cve/CVE-2019-14283.html
  o https://www.suse.com/security/cve/CVE-2019-14284.html
  o https://www.suse.com/security/cve/CVE-2019-3846.html
  o https://bugzilla.suse.com/1012382
  o https://bugzilla.suse.com/1051510
  o https://bugzilla.suse.com/1053043
  o https://bugzilla.suse.com/1055117
  o https://bugzilla.suse.com/1061840
  o https://bugzilla.suse.com/1065600
  o https://bugzilla.suse.com/1065729
  o https://bugzilla.suse.com/1068032
  o https://bugzilla.suse.com/1071995
  o https://bugzilla.suse.com/1083647
  o https://bugzilla.suse.com/1083710
  o https://bugzilla.suse.com/1088047
  o https://bugzilla.suse.com/1094555
  o https://bugzilla.suse.com/1098633
  o https://bugzilla.suse.com/1102247
  o https://bugzilla.suse.com/1106383
  o https://bugzilla.suse.com/1106751
  o https://bugzilla.suse.com/1109137
  o https://bugzilla.suse.com/1111666
  o https://bugzilla.suse.com/11123080
  o https://bugzilla.suse.com/1112824
  o https://bugzilla.suse.com/1113722
  o https://bugzilla.suse.com/1114279
  o https://bugzilla.suse.com/1115688
  o https://bugzilla.suse.com/1117158
  o https://bugzilla.suse.com/1118139
  o https://bugzilla.suse.com/1119222
  o https://bugzilla.suse.com/1120423
  o https://bugzilla.suse.com/1120566
  o https://bugzilla.suse.com/1124167
  o https://bugzilla.suse.com/1124503
  o https://bugzilla.suse.com/1127034
  o https://bugzilla.suse.com/1127155
  o https://bugzilla.suse.com/1127315
  o https://bugzilla.suse.com/1128432
  o https://bugzilla.suse.com/1128902
  o https://bugzilla.suse.com/1128910
  o https://bugzilla.suse.com/1129770
  o https://bugzilla.suse.com/1130972
  o https://bugzilla.suse.com/1132154
  o https://bugzilla.suse.com/1132390
  o https://bugzilla.suse.com/1133021
  o https://bugzilla.suse.com/1133401
  o https://bugzilla.suse.com/1133738
  o https://bugzilla.suse.com/1134097
  o https://bugzilla.suse.com/1134303
  o https://bugzilla.suse.com/1134390
  o https://bugzilla.suse.com/1134393
  o https://bugzilla.suse.com/1134395
  o https://bugzilla.suse.com/1134399
  o https://bugzilla.suse.com/1134671
  o https://bugzilla.suse.com/1135296
  o https://bugzilla.suse.com/1135335
  o https://bugzilla.suse.com/1135556
  o https://bugzilla.suse.com/1135642
  o https://bugzilla.suse.com/1135661
  o https://bugzilla.suse.com/1136157
  o https://bugzilla.suse.com/1136424
  o https://bugzilla.suse.com/1136598
  o https://bugzilla.suse.com/1136811
  o https://bugzilla.suse.com/1136896
  o https://bugzilla.suse.com/1136922
  o https://bugzilla.suse.com/1136935
  o https://bugzilla.suse.com/1136990
  o https://bugzilla.suse.com/1137103
  o https://bugzilla.suse.com/1137162
  o https://bugzilla.suse.com/1137194
  o https://bugzilla.suse.com/1137366
  o https://bugzilla.suse.com/1137372
  o https://bugzilla.suse.com/1137429
  o https://bugzilla.suse.com/1137444
  o https://bugzilla.suse.com/1137458
  o https://bugzilla.suse.com/1137534
  o https://bugzilla.suse.com/1137535
  o https://bugzilla.suse.com/1137584
  o https://bugzilla.suse.com/1137586
  o https://bugzilla.suse.com/1137609
  o https://bugzilla.suse.com/1137625
  o https://bugzilla.suse.com/1137728
  o https://bugzilla.suse.com/1137739
  o https://bugzilla.suse.com/1137752
  o https://bugzilla.suse.com/1137811
  o https://bugzilla.suse.com/1137827
  o https://bugzilla.suse.com/1137884
  o https://bugzilla.suse.com/1137995
  o https://bugzilla.suse.com/1137996
  o https://bugzilla.suse.com/1137998
  o https://bugzilla.suse.com/1137999
  o https://bugzilla.suse.com/1138000
  o https://bugzilla.suse.com/1138002
  o https://bugzilla.suse.com/1138003
  o https://bugzilla.suse.com/1138005
  o https://bugzilla.suse.com/1138006
  o https://bugzilla.suse.com/1138007
  o https://bugzilla.suse.com/1138008
  o https://bugzilla.suse.com/1138009
  o https://bugzilla.suse.com/1138010
  o https://bugzilla.suse.com/1138011
  o https://bugzilla.suse.com/1138012
  o https://bugzilla.suse.com/1138013
  o https://bugzilla.suse.com/1138014
  o https://bugzilla.suse.com/1138015
  o https://bugzilla.suse.com/1138016
  o https://bugzilla.suse.com/1138017
  o https://bugzilla.suse.com/1138018
  o https://bugzilla.suse.com/1138019
  o https://bugzilla.suse.com/1138291
  o https://bugzilla.suse.com/1138293
  o https://bugzilla.suse.com/1138374
  o https://bugzilla.suse.com/1138375
  o https://bugzilla.suse.com/1138589
  o https://bugzilla.suse.com/1138719
  o https://bugzilla.suse.com/1139358
  o https://bugzilla.suse.com/1139751
  o https://bugzilla.suse.com/1139771
  o https://bugzilla.suse.com/1139782
  o https://bugzilla.suse.com/1139865
  o https://bugzilla.suse.com/1140133
  o https://bugzilla.suse.com/1140139
  o https://bugzilla.suse.com/1140322
  o https://bugzilla.suse.com/1140328
  o https://bugzilla.suse.com/1140405
  o https://bugzilla.suse.com/1140424
  o https://bugzilla.suse.com/1140428
  o https://bugzilla.suse.com/1140575
  o https://bugzilla.suse.com/1140577
  o https://bugzilla.suse.com/1140637
  o https://bugzilla.suse.com/1140652
  o https://bugzilla.suse.com/1140658
  o https://bugzilla.suse.com/1140715
  o https://bugzilla.suse.com/1140719
  o https://bugzilla.suse.com/1140726
  o https://bugzilla.suse.com/1140727
  o https://bugzilla.suse.com/1140728
  o https://bugzilla.suse.com/1140814
  o https://bugzilla.suse.com/1140887
  o https://bugzilla.suse.com/1140888
  o https://bugzilla.suse.com/1140889
  o https://bugzilla.suse.com/1140891
  o https://bugzilla.suse.com/1140893
  o https://bugzilla.suse.com/1140903
  o https://bugzilla.suse.com/1140945
  o https://bugzilla.suse.com/1140954
  o https://bugzilla.suse.com/1140955
  o https://bugzilla.suse.com/1140956
  o https://bugzilla.suse.com/1140957
  o https://bugzilla.suse.com/1140958
  o https://bugzilla.suse.com/1140959
  o https://bugzilla.suse.com/1140960
  o https://bugzilla.suse.com/1140961
  o https://bugzilla.suse.com/1140962
  o https://bugzilla.suse.com/1140964
  o https://bugzilla.suse.com/1140971
  o https://bugzilla.suse.com/1140972
  o https://bugzilla.suse.com/1140992
  o https://bugzilla.suse.com/1141401
  o https://bugzilla.suse.com/1141402
  o https://bugzilla.suse.com/1141452
  o https://bugzilla.suse.com/1141453
  o https://bugzilla.suse.com/1141454
  o https://bugzilla.suse.com/1141478
  o https://bugzilla.suse.com/1141488
  o https://bugzilla.suse.com/1142023
  o https://bugzilla.suse.com/1142112
  o https://bugzilla.suse.com/1142220
  o https://bugzilla.suse.com/1142221
  o https://bugzilla.suse.com/1142265
  o https://bugzilla.suse.com/1142350
  o https://bugzilla.suse.com/1142351
  o https://bugzilla.suse.com/1142354
  o https://bugzilla.suse.com/1142359
  o https://bugzilla.suse.com/1142450
  o https://bugzilla.suse.com/1142701
  o https://bugzilla.suse.com/1142868
  o https://bugzilla.suse.com/1143003
  o https://bugzilla.suse.com/1143045
  o https://bugzilla.suse.com/1143105
  o https://bugzilla.suse.com/1143185
  o https://bugzilla.suse.com/1143189
  o https://bugzilla.suse.com/1143191
  o https://bugzilla.suse.com/1143507

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:


Australian Computer Emergency Response Team
The University of Queensland
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
Comment: http://www.auscert.org.au/render.html?it=1967